[svlug] [linux-alert] Linux UNFSD Security Problems (fwd)

James W. Abendschan jwa at jammed.com
Tue Sep 1 22:25:40 PDT 1998

Previous message: [svlug] [linux-alert] Linux UNFSD Security Problems (fwd)
Next message: [svlug] [linux-alert] Linux UNFSD Security Problems (fwd)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 1 Sep 1998 javilk at polly.mall-net.com wrote:
>    Well, I don't read them elsewhere, nor do I have time to.  YES, I DO
> want relevant alerts posted here.  But please do tell us what they are
> relevant to...  I use NFS over my LAN, and have a PPP connection.

In general, when dealing with NFS security:

(a) your NFS servers should not be visible to the Internet
(b) you should have TCP & UDP ports 2049 (nfs) and port 111 (portmapper) 
    firewalled from the Internet
(c) your portmapper should not allow arbitrary connections (the "portmap:"
    line in /etc/hosts.{deny|allow})

James

--
James W. Abendschan
http://www.jammed.com/
I want the TCP/IP equivalent of a Rat Thing.


--
echo "unsubscribe svlug" | mail majordomo at svlug.org
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ to unsubscribe

Previous message: [svlug] [linux-alert] Linux UNFSD Security Problems (fwd)
Next message: [svlug] [linux-alert] Linux UNFSD Security Problems (fwd)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list